Overview

overview

10

Static

static

3

d6ce34b53a...18.exe

windows7-x64

10

d6ce34b53a...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d6ce34b53ab49f151a906b575a2162b9_JaffaCakes118

  • Size

    718KB

  • Sample

    240909-v7wvrs1bqk

  • MD5

    d6ce34b53ab49f151a906b575a2162b9

  • SHA1

    47390e4d98fc6b5f3f5361f2b3f6a144cb40537b

  • SHA256

    dbebac2a23344ff8750189c6e255e90d062957be845b0d321b79af268eb52cf5

  • SHA512

    806bcad709ebcb7bbb30a9520a2178a4b5e6c581126e0abe61b0546e3fa02847215a6b0a6b6f8b5189b967dd409be29ae4a9726ca36a8372e1243df5807ce420

  • SSDEEP

    12288:bc//////wWRBjvJOnkHWgW8MLZ4WdV6sQxt8AI+JO9c9F22muwPpWGyXHAVWhN4H:bc//////wWRBdOkHZoFhdVext8+O9cO1

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      d6ce34b53ab49f151a906b575a2162b9_JaffaCakes118

    • Size

      718KB

    • MD5

      d6ce34b53ab49f151a906b575a2162b9

    • SHA1

      47390e4d98fc6b5f3f5361f2b3f6a144cb40537b

    • SHA256

      dbebac2a23344ff8750189c6e255e90d062957be845b0d321b79af268eb52cf5

    • SHA512

      806bcad709ebcb7bbb30a9520a2178a4b5e6c581126e0abe61b0546e3fa02847215a6b0a6b6f8b5189b967dd409be29ae4a9726ca36a8372e1243df5807ce420

    • SSDEEP

      12288:bc//////wWRBjvJOnkHWgW8MLZ4WdV6sQxt8AI+JO9c9F22muwPpWGyXHAVWhN4H:bc//////wWRBdOkHZoFhdVext8+O9cO1

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks